Automated doubt removal
Relieve your security teams with GLIMPS Malware and its automated analysis capabilities, and its simplified integration into all your analysis workflows. Discover how GLIMPS Malware and all its AI-based analysis and detection technologies can help you meet your users’ guaranteed need for cyber assistance on a daily basis
Cybersecurity in our professional and personal environments is on the rise, that’s a fact! And of course, this is primarily in response to an ever-growing and increasingly sophisticated threat. The consequences for security teams are immediate, with a drastic increase in the number of tickets to be processed daily by SOC analysts and other security teams.
But do all these tickets really require the mobilization of one or more cybersecurity experts to respond to them?
Many of the requests made to security teams (IT departments, SOCs, CSIRTs) come directly from their users. Employee awareness has made a major contribution to this cyber awareness, and reflexes are evolving. Today, CISOs are devoting an increasing amount of time to this task, with beneficial effects for the company and its security. But the corollary is a rapid increase in the number of requests for the removal of doubts, which security teams are struggling to absorb.
How can GLIMPS Malware help you?
The GLIMPS Malware platform has been designed by nature as an automated investigation toolbox. Its orchestrator automatically uses over 25 analysis and detection engines to provide fast, accurate detection of malicious files, while offering the information security teams need to qualify incidents in seconds.
Offering multiple reading levels, GLIMPS Malware Expert offers analysis reports accessible to N1 SOCs, while providing the information expected by N3 SOCs or CSIRTs.
GLIMPS Malware‘s advanced integration capabilities also enable the file analysis and IOC reporting process to be integrated into all corporate or security team workflows
Here are a few examples of workflows
for automated doubt removal
On a voluntary basis, a user can forward an e-mail to the security team to clear up a doubt about an attachment. Using an appropriate plug-in in their e-mail client, or by simply forwarding the e-mail, the user reports the e-mail and its attachment to a functional reporting address. An automation brick (such as another SOAR) recovers the e-mail and its attachment and forwards it via API to GLIMPS Malware Detect, which returns a verdict within seconds. The user is automatically notified of the verdict and can take any necessary action based on it. All analysis details are also accessible to the security team and automatically transmitted to their Threat Intel or Event Correlation (SIEM) tools
Using native connectors with certain EDR solutions, or via automation tools (SOAR or other), each alert detected by the EDR triggers the file to be sent to GLIMPS Malware for analysis, using the GLIMPS Malware Detect APIs. In just a few seconds, GLIMPS Malware will provide a complete analysis report to enhance the EDR report, directly in the EDR interface for native integrations. SOC teams qualifying incidents then have an EDR verdict supplemented by that of GLIMPS Malware, using 25 analysis and detection technologies, reducing MTTR (Mean Time To Respond) by over 60%.
By providing a simple web portal accessible to all users of a company or entity, GLIMPS Malware Kiosk enables anyone to submit a file to check whether or not it represents a risk to the company. Users receive a verdict on their file in a matter of seconds, without having to call on security teams, while benefiting from the full range of GLIMPS Malware analysis and detection technologies. All enriched analysis results are then automatically accessible to the company’s SOC and CSIRT teams
Key benefits
Simplified integration into your workflows
Using native connectors with numerous security products or via GLIMPS Malware Detect‘s open APIs
Automated extraction
of IOCs and character strings for instant incident qualification using GLIMPS Malware Expert
Safe file preview
of pdf, word, excel, html formats without taking the slightest risk from your workstation to remove a doubt from GLIMPS Malware Expert
Fast, accurate detection
Thanks to an analysis time of just a few seconds per file, with no impact on the user experience
Real-time notifications
Inform security teams immediately after a threat is detected with GLIMPS Malware Expert and our Alerting functionality, facilitating a rapid, coordinated response
Public submission interface
for all your employees, making them autonomous when it comes to raising doubts and relieving the company’s security teams.
Request a demo
Nos solutions vous intéressent ? Vous souhaitez voir nos produits en action ?
Request a demo